Threat actors have leaked over 516GB of data of German IT firm Citycomp after the company refused to comply with a blackmail attempt. The dump includes information on Citycomp enterprise customers including VAG, Ericsson, Leica, MAN, Toshiba, UniCredit, British Telecom, ATOS, Grohe, Hugo Boss, Oracle, SAP, and Porsche.

Earlier this week, Citycomp acknowledged that it had experienced a targeted cyberattack in early April in which threat actors managed to steal customer information. The attackers then demanded the firm to pay a fee to prevent them from publishing the information, but Citycomp refused to pay, prompting the threat actors to make the data available for download on the dark web. The IT firm said that “[s]ince Citycomp does not comply with blackmail the publication of customer data could not be prevented.” It has informed affected customers about the incident.

OODA Analyst

OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.